A talk about DevOps, Security, and AI by James Wickett DevOpsDays Austin #devopsdaysaustin

Thanks Ernest Mueller! Also thanks for the cameo appearance.

Learning about distributed tracing from Josh Lee at #devopsdays DevOpsDays Austin #devopsdaysaustin

The slides from my talk at #devopsdays #devopsdaysaustin DevOpsDays Austin A Talk about DevOps, Security, and AI speakerdeck.com/wickett/a-talk…

The 8 fallacies of distributed computing (circa 1990s) @nicksilkey DevOpsDays Austin #devopsdaysaustin #devops

The 8 Fallacies of a Distributed Organization @nicksilkey #devopsdays DevOpsDays Austin #devopsdaysaustin

To tell stories with data, consider the 90 degree turn (E pluribus unum) Peco Karayanev DevOpsDays Austin #devopsdaysaustin #devopsdays

survivalTipThatProgrammersDontWantYouToKnow reddit.com/r/programmerhu…

Today, I’m excited to announce the launch of two powerful new analyzers integrated into DryRun Security: SSRF (Server-Side Request Forgery) and IDOR (Insecure Direct Object References). These latest additions add to our suite of analyzers to ensure we continue to provide risk

Excited for Aaron Rinehart (at 127.0.0.1)’s talk about LSI at #ETLS

AppSec vendors hate when you do this one simple trick...

🤖 One Year of Using LLMs for Application Security: What We Learned Ken Johnson shares key lessons learned and challenges faced Tips: - Use the right LLM for the task (e.g. some specialize in embeddings, or understanding code) - The value of RAG - Combining deterministic and

We're thrilled to welcome DryRun Security to the LiveOak portfolio! DryRun raised $8.7M in seed funding to transform app security with AI-powered risk detection. Congrats to James Wickett, Ken Johnson & team! #WelcometotheLiveOakPortfolio

Traditional SAST tools miss real risks. We tested DryRun Security vs. Snyk, CodeQL, Semgrep, and SonarQube—legacy tools struggled with IDOR, SSRF & logic flaws, but DryRun caught them all. See the full breakdown: dryrun.security/blog/dryrun-se…

The hardest problems in application security today are context-dependent. Authorization issues, PII data leaks, YAML misconfigurations in prod. Where code is run, why it was written, and what purpose it serves all make a huge difference in how much risk is being introduced to

SAST rt now

Tomorrow is CYBERLUNCH #austin If you like Cyber, and you like Lunch, then... well, you get the picture here. Join the meetup so we know how many tables to fend off from the pizza hordes. meetup.com/cyberlunch/eve…

CodeRabbit RCE wasn’t prompt injection—it was tool execution + isolation drift + secrets exposure. We’ve stumbled too (IDOR in closed beta), which is why our sandboxed approach avoids this class of risk. 🔗Read more: na2.hubs.ly/y0S7hz0